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Top Stories 

• Five people were killed by the Valley and Butte fires that collectively burned over 145,000 
acres in northern California, destroyed 585 structures, and forced 20,000 people to 
evacuate by September 17. - Reuters (See item 18 ) 

• Apple released software updates adding new capabilities and addressing over 100 
vulnerabilities in iOS, Mac OS X, iTunes, Xcode, and others. - Securityweek (See item 23 ) 

• Comcast Corp reached a $33 million settlement with California State officials September 
17 over allegations that Comcast disclosed about 75,000 customers’ information online 
over a 2-year period after each customer paid for unlisted Voice over Internet Protocol. - 
Reuters (See item 25 ) 

• U.S. officials reported September 18 that American-based companies are now able to open 
up offices, stores, and warehouses in Cuba after a regulation was issued easing restrictions 
and opening up travel. - Reuters (See item 27 ) 
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Energy Sector 



Nothing to report 

Chemical Industry Sector 

Nothing to report 

Nuclear Reactors, Materials, and Waste Sector 

Nothing to report 

Critical Manufacturing Sector 

1. September 18, WFLA 8 Tampa - (Florida) Fire at Largo warehouse under 
investigation. Authorities waited for the all clear to be issued before investigating the 
cause of a 2-alarm fire September 18 at Sun Glo Plating in Largo, Florida that caused 
extensive damage to a warehouse and released dangerous chemicals inside the building, 
prompting a HAZMAT response. 

Source: http://wfla.com/2015/09/18/fire-at-largo-warehouse/ 

2. September 17, Autoblog - (National) Toyota recalls 423.5k RAV4s for faulty 
windshield wipers. Toyota Motor Sales, USA, Inc., announced a recall September 17 
for 421,000 model years 2009 - 2012 RAV4 and 2,500 model years 2012 - 2014 
RAV4 EV vehicles due to an issue with windshield wipers in which water can corrode 
the link between the wiper and motor crank arm, causing the wipers to possibly fail 
over time. 

Source: http://www.autoblog.com/2015/09/17/toyota-rav4-windshield-wiper-recall/ 

For another story, see item 20 

Defense Industrial Base Sector 

Nothing to report 

Financial Services Sector 

3. September 17, U.S. Securities and Exchange Commission - (National) SEC charges 
clearing firm officials for improper margin loans, accounting and disclosure 
failures. The U.S. Securities and Exchange Commission charged 4 Penson Financial 
Services officials September 17 for alleged accounting and disclosure failures that 
resulted in loaning nearly $100 million in margin loans secured by impaired, unrated 
municipal bonds that cost investors $60 million. The SEC filed a separate complaint 
against a customer who benefited from one of the margin loans, for allegedly 
fraudulently obtaining $6.8 million in loans or credit from Penson. 

Source: http ://www . sec . gov/news/pressrelease/20 15-1 94.html 
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4. September 17, U.S. Attorney’s Office District of Kansas - (Kansas) Shawnee Mission 
man pleads guilty to $6 million embezzlement. A Shawnee Mission man pleaded 
guilty September 16 to embezzling over $6 million from Overland Park-based 
Commodity Specialists Company by creating fake companies and by billing CSC for 
fake deliveries and associated invoices. The suspect also failed to report the income on 
Federal tax returns. 

Source: http://www.iustice.gov/usao-ks/pr/shawnee-mission-man-pleads-guilty-6- 
million-embezzlement 



For another story, see item 27 

Transportation Systems Sector 

5. September 17, Green Valley News - (Arizona) Suspect facing charges connected to 
mail theft, check washing. A Green Valley man was charged September 17 on 3 
accounts of forgery and 1 charge of fraudulent schemes and artifice, among other 
charges for allegedly stealing mail from U.S. Postal Service collection boxes and 
altering checks in Arizona August 25. An investigation continues to find further 
accomplices. 

Source: http ://w w w . gvnews .com/news/updated- suspect-facing-charges -connected-to- 
mail-theft-check- washing/article 645 2b9aO-5cbO- 1 1 e5-b9a2-cb7 e056ac 1 4c .html 

Food and Agriculture Sector 

6. September 17, U.S. Department of Agriculture - (National) FSIS issues public health 
alert for stuffed chicken products due to possible Salmonella contamination. The 

Food Safety and Inspection Service reported September 17 that frozen, raw, stuffed and 
breaded chicken products produced by Aspen Foods, a division of Chicago-based Koch 
Poultry Company, have been confirmed as having the same Salmonella Enteritidis 
outbreak that was part of a July 15 recall. An investigation remains ongoing. 

Source: http://www.fsis.usda.gov/wps/portal/fsis/newsroom/news-releases-statements- 
and-transcripts/news-release-archives-by- year/archive/20 1 5/pha-09 1715 

7. September 17, CNN - (Minnesota) Tomatoes the cause of Chipotle’s salmonella 
outbreak in Minnesota. Minnesota health officials confirmed September 17 that 
tomatoes were the cause of a Salmonella Newport outbreak at 22 different Chipotle 
restaurants after 64 cases of illnesses were reported from consumers. Officials are 
investigating which farm the tomatoes were distributed from. 

Source: http://wtvr.com/2015/09/17/tomatoes-the-cause-of-chipotles-salmonella- 
outbreak-in-minnesota/ 

8. September 17, U.S. Food and Drug Administration - (New York) Butala Emporium, 
Inc. recalls eleven Ayurvedic Dietary Supplements because of elevated levels of 
lead and mercury. The U.S. Food and Drug Administration reported September 15 
that Jackson Heights, New York-based Butala Emporium, Inc., is voluntarily recalling 
eleven Ayurvedic supplements after officials discovered that the products contained 
high levels of lead and mercury. The products were distributed through retail stores in 



- 3 - 



New York and through Internet sales. 

Source: http://www.fda.gov/Safety/Recalls/ucm463048.htm 



Water and Wastewater Systems Sector 

9. September 18, Associated Press - (North Carolina) Nearly 5,000 gallons of sewage 
spilled near Hope Mills. Fayetteville Public Works Commission reported September 
1 8 that more than 4,600 gallons of untreated wastewater spilled into a creek outside of 
Hope Mills, North Carolina, after a pump system failed while contractors were working 
on a sewer line. The equipment has been repaired and the North Carolina Division of 
Water Resources was noticed. 

Source: http://www.wect.com/storv/30062307/nearlv-5000-gallons-of-sewage-spilled- 
near-hope-mills 

10. September 17, WAPT 16 Jackson - (Mississippi) Water main break prompts boil 
water advisory. Jackson officials issued a boil water advisory September 17 for 
Murray High School and about 100 connections in Arizona after a water main broke. 
Crews repaired the rupture, but officials estimate the advisory will stay in effect for at 
least 2 days. 

Source: http://www.wapt.com/news/central-mississippi/iackson/water-main-break-in- 
near-fondren/35334614 



11. September 17, Huntington Beach Independent - (California) Sewage spill may keep 3 
Huntington Harbour marinas closed for days. The Orange County Health Care 
Agency closed Sunset Aquatic Marina, Peter’s Landing, and Portofino Cove Marina to 
swimming and diving September 16 after an estimated 12,000 gallons of sewage spilled 
into the marinas. Officials estimate it may take several days before the water is safe to 
enter. 

Source: http://www.hbindependent.com/news/tn-hbi-me-0924-sewage-spill- 
20150917,0,5049646.story 

Healthcare and Public Health Sector 

Nothing to report 

Government Facilities Sector 

12. September 18, KNTV 11 San Jose - (California) Pleasanton police investigate bomb 
threat at high school: Parents, students. Amador Valley High School in Pleasanton 
was closed September 18 while police investigated a threat on the campus. 

Source: http://www.nbcbayarea.com/news/local/Amador-Valley-High-in-Pleasanton- 
Shut-Down-as-Police-Investigate-Bomb-Threat-328191191.html 

13. September 18, Associated Press - (Ohio) Columbus school bus crash sends 8 
students to hospital. An accident involving a Columbus City Schools bus left 8 
Walnut Ridge High School students and 2 drivers injured when the bus collided with 
another vehicle near the school September 17. 
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Source: http://wdtn.com/2015/09/18/columbus-school-bus-crash-sends-8-students-to- 
hospital/ 

14. September 17, KYW 3 Philadelphia - (Pennsylvania) Bed bugs found in 311 call 
center in City Hall. A bed bug found in the City Hall at Philadelphia’s 3-1-1 call 
center prompted the closure of the center September 17 while crews fumigated the 
building. 

Source: http://philadelphia.cbslocal.com/2015/Q9/17/workers-find-bedbugs-in- 
philadelphia-city-hall/ 

15. September 17, Al.com - (Alabama) Lock down lifted after bomb threats at 2 
Autauga County schools, courthouse. Police cleared the scene after Marbury Middle 
School, Prattville High School, and Autauga County Courthouse in Alabama were all 
evacuated for more than 2 hours September 17 due to a series of hoax bomb threats. 
Authorities are continuing to investigate the source of the threats. 

Source: 

http://www.al.eom/news/montgomerv/index.ssf/2015/09/2 autauga county schools co 
urt.html 



16. September 17, Long Island Newsday - (New York) Hackers breach Commack High 
School computer system, district officials say. New York school officials reported 
September 17 that an individual broke into Commack High School’s computer data 
network which contains class schedules, student identification numbers, names, and 
addresses. Officials reported that there was no evidence that the students’ information 
was downloaded or misused and that Suffolk police have identified a suspect 
Source: http://www.newsday.com/long-island/education/hackers-breach-commack- 
high-school-computer-system-district-officials-say- 1.10857943 

17. September 17, Anderson Independent Mail - (South Carolina) SLED says ex-Clemson 
staffer stole $216K. The South Carolina Law Enforcement Division reported that a 
former Clemson University support staffer was charged September 16 in connection to 
allegedly stealing over $216,000 from the university by fraudulently using the funds to 
obtain about 23 1 Apple computer devices without authorization, which she later sold 
for personal profit from July 2012 to March 2015. 

Source: http://www.independentmail.com/news/sled-says-exclemson-staffer-stole- 
216k 99535345 



18. September 17, Reuters - (California) Death toll in northern California wildfires 
jumps to five. Five people were killed by the Valley and Butte fires that collectively 
have burned over 145,000 acres in northern California, destroyed 585 structures, and 
forced 20,000 people to evacuate by September 17. Crews reached 35 percent 
containment of the Valley Fire and 55 percent containment of the Butte Fire. 

Source: http://www.reuters.com/article/2015/09/18/us-usa-wildfires- 
idUSKCN0RC0J720150918 



- 5 - 



For another story, see item 10 



Emergency Services Sector 

Nothing to report 

Information Technology Sector 

19. September 18, SC Magazine - (International) VMware addresses vulnerability in 
vCenter server. VMware released an update addressing a certificate validation 
vulnerability in select versions of its vCenter Server which an attacker could exploit to 
intercept traffic between the vCenter Server and the Lightweight Directory Access 
Protocol (LDAP) server to capture sensitive information. 

Source: http://www.scmagazine.com/vmware-addresses-vulnerability-in-vcenter- 
server/article/439279/ 

20. September 18, Softpedia - (International) D-Link accidentally publishes code signing 
keys. A Norwegian developer and researchers from Fox-IT discovered that D-Link 
inadvertently released private code signing keys along with a recent firmware update 
following the purchase of the company’s DCS-5020L surveillance camera. D-Link 
revoked the certificate and published new versions of the firmware that do not contain 
the code signing keys. 

Source: http://news.softpedia.com/news/d-link-accidentallv-publishes-code-signing- 
keys-492032.shtml 

21. September 18, Help Net Security - (International) Critical Bugzilla flaw allows access 
to unpatched vulnerability information. Mozilla released an update addressing a 
critical vulnerability in its Bugzilla bug-tracking software in which an attacker could 
gain access to information about a project’s unpatched flaws by tricking the system into 
granting domain- specific privileges. Attackers can create an account with an email 
address different than originally requested due to a vulnerability where login names 
longer than 127 characters could cause the domain name of the email address to be 
corrupted. 

Source: http://www.net-security.org/secworld.php ?id=l 8868 

22. September 18, Help Net Security - (International) Malicious SYNful Cisco router 
implant found on more devices across the globe. Security researchers followed 
recent FireEye findings of SYNful modified malicious router firmware with four scans 
of public IPv4 addresses and found that 79 hosts displayed behavior consistent with the 
SYNful Knock implant, including 25 in the U.S. which belong to a single East Coast 
service provider. 

Source: http://www.net-security.org/malware news.php?id=3104 

23. September 17, Securityweek - (International) Apple patches vulnerabilities in iOS, 
OS X, iTunes, Xcode. Apple released software updates adding new capabilities and 
addressing over 100 vulnerabilities in iOS, Mac OS X, iTunes, and Xcode, including a 
security flaw in AirDrop that could allow an attacker to send malicious files to an 
affected device within Bluetooth range, 33 vulnerabilities affecting WebKit, and 9 
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relating to CFNetwork, among others. 

Source: http://www.securityweek.com/apple-patches-vulnerabilities-ios-os-x-itunes- 
xcode 



24. September 17, Network World - (International) Under DDoS attack? It could just be 
a distraction. Kaspersky Lab released findings from polling of managers and 
information technology professionals at 5,500 companies in 26 countries revealing that 
three-quarters of distributed denial-of- service (DDoS) attacks are accompanied by other 
security incidents, implying that the attacks are often used as a diversion tactic and that 
businesses should keep resources available to manage corporate security in its entirety. 
Source: http://www.computerworld.com/article/2984606/securitv/under-ddos-attack-it- 
could-be-iust-a-distraction.html 

Internet Alert Dashboard 



To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or 
visit their Web site: http://www.us-cert.gov 

Information on IT information sharing and analysis can be found at the IT ISAC (Information Sharing and 
Analysis Center) Web site: http://www.it-isac.org 



Communications Sector 

25. September 17, Reuters - (California) Comcast reaches $33 min settlement with 
California privacy violations. Comcast Corp reached a $33 million settlement with 
California Department of Justice and the California Public Utilities Commission 
September 17 over allegations that Comcast disclosed about 75,000 customers’ names, 
phone numbers, and addresses online over a 2-year period after each customer paid for 
unlisted Voice over Internet Protocol (VoIP). Comcast will refund all fees paid for 
unlisted service and pay each customer an additional $100. 

Source: http://www.reuters.com/article/2015/Q9/17/comcast-settlement- 
idUSLlNllN3GJ20150917 



For additional stories, see items 23 and 27 

Commercial Facilities Sector 

26. September 18, KNBC 4 Los Angeles - (California) Explosion wakes Irvine condo 
residents before escape from ‘giant’ fire. An overnight 3-alarm fire displaced 15 
people after destroying 6 condos in Orange County September 18. The damages were 
estimated to about $1 million and $500,000 for the content inside the properties. 

Source: http://www.nbclosangeles.com/news/local/Fire-Destroys-Condos-Cars-in- 
Irvine-328 1 6247 1 .html 

27. September 18, Reuters - (International) U.S. moves to open up business with Cuba, 
ease embargo. U.S. officials reported September 18 that American-based companies 
including Internet-based services, business operations, banking and remittances, travel 
services, and telecommunication companies are now able to open up offices, stores, and 
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warehouses in Cuba after a regulation was issued that eased restrictions and opened up 
travel. The regulations also increase educational opportunities by allowing Internet- 
based courses and further expanding humanitarian efforts through disaster relief. 

Source: http://www.msn.com/en-us/news/us/us-moves-to-open-up-business-with-cuba- 
ease-embargo/ar-AAestRP 

28. September 18, Oakland Press - (Michigan) Large fire damages 16 units at Novi 
apartment complex. A large fire evacuated dozens of residents and damaged 16 units 
at the Glens of Northville apartments in Novi September 17, prompting fire crews to 
remain on site for several hours extinguishing the flames. There were no reports of 
injuries and the cause of the fire remains under investigation. 

Source: http://www.theoaklandpress.com/general-news/20150917/large-fire-damages- 
16-units-at-novi-apartment-complex 

29. September 17, Rochester Post-Bulletin - (New York) Renters warehouse fined 
$150,000 by state. The Minnesota Department of Commerce cited the Twin Cities 
office of Renters Warehouse $150,000 for a variety offenses including overcharging for 
bounce checks and for its Rochester franchise allegedly selling insurance without a 
license with their Eviction Protection Plan and Property Protection Plan. 

Source: http://www.postbulletin.com/business/renters-warehouse-fined-by- 
state/article d0f4cd07-9be4-5bc8-9250-be8640c3edd7.html 



Dams Sector 



30. September 16, Lawrence Eagle Tribune - (Massachusetts) Crews scramble to fix dam 
breach. Officials reported September 16 that the Ballardvale Dam in Andover, 
Massachusetts, was scheduled to undergo emergency construction after its sluiceway 
broke open September 12 and additional erosion ensued September 14 following a 
heavy rain storm that lead to the breach. Officials estimated repairs to begin September 
16. 

Source: http://www.andovertownsman.com/news/local news/heavy-rain-damages- 
ballardvale-dam/article_05ecd586-266a-553f-9a3a-485e94e6299e.html 
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NTAS 



NO ACTIVE ALERTS 
wwvv.DHS.gov/alerts 



Department of Homeland Security (DHS) 

DHS Daily Open Source Infrastructure Report Contact Information 

About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday 
through Friday] summary of open-source published information concerning significant critical 
infrastructure issues. The DHS Daily Open Source Infrastructure Report is archived for 10 days on 
the Department of Homeland Security Web site: http://www.dhs.gov/lPDailvReport 

Contact Information 

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS 

Daily Report Team at (703) 942-8590 

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow 

instructions to Get e-mail updates when this information changes . 

Removal from Distribution List: Send mail to support@govdelivery.com . 



Contact DHS 

To report physical infrastructure incidents or to request information, please contact the National Infrastructure 
Coordinating Center at nicc@hq.dhs.gov or (202) 282-9201. 

To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or visit 
their Web page at www.us-cert.gov . 

Department of Homeland Security Disclaimer 

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform 
personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright 
restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original source 
material. 
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